Kennwortrichtlinie

WinCC OA bietet zwei Kennwortrichtlinien. Erfahren Sie mehr über die Unterschiede zwischen der WinCC OA Richtlinie und der Active Directory-Richtlinie sowie über weitere Vorteile wie MFA und SSO.

Video Information

Länge
2:50
Sprache
Englisch

Transkript

Hello and welcome to our security series. I am Mounier, your host. In this video, we will talk about the importance and the key elements of a password policy.

A password policy defines and sets the rules for the password strength, and also if you need to change it and how often.

So, what rules apply to the WinCC OA password policy?

  • A password in WinCC OA must contain at least eight characters.
  • One of these characters must be an uppercase letter, and one must be a special character.
  • Do not use the same password twice.
  • Avoid character repetition, keyboard patterns, and dictionary words.
  • Refrain from utilizing data linked to the user or their account.

This password policy is valid only for users created in WinCC OA and can be modified according to current security requirements by an authorized user.

As an option to the WinCC OA password policy, it is possible to work with users existing in an Active Directory. WinCC OA offers the opportunity to synchronize these users with the WinCC OA project. The benefit of an Active Directory Authentication is that you only need to manage a single user database in the Active Directory, rather than maintaining separate databases in both systems -

in WinCC OA and in the Active Directory.

But bear in mind that by selecting the Active Directory option, the WinCC OA password policy is deactivated, and the Active Directory policy is active.

The main difference between the two methods is their approach to password management. For example, the Active Directory password policy includes features such as a cyclic and mandatory switch of passwords and is more comprehensive. Meanwhile, the WinCC OA password policy focuses on user-friendliness and simplicity in WinCC OA and is ideal for local and smaller-scale environments.

The best comes last; Multifactor authentication is enabled by logging in at the Operating System level AND identifying oneself on WinCC OA via Single Sign-On. Isn’t this cool?

OK, thank you for watching and stay secure! Don’t forget to follow us on LinkedIn and YouTube and be ready for our next episode of this video series.